Most of these tricks are listed here at GTFOBins: https://gtfobins.github.io/ which is based on LOLBAS for Windows: https://lolbas-project.github.io/#
package github.com/liamg/traitor/cmd/traitor: mkdir /home/test/go: not a directory
The project has to opt into it, which appears to be the case here since there is a `go.mod` file. Are you using a modern version of Go?
2. If you don't use modules, $GOPATH is used.
3. If $GOPATH isn't set, it defaults to ~/go.
and it's also just for depedencies it downloads.
_your_ code lives where you put it
Perhaps that's changed, but it put me off the language entirely.
I think a lot of it is just growing pains, but it still feels clunky. My system has a .cache folder that everything already uses, why does Go need a special cache?
As for multi-language projects and conflicting layout needs: oh yeah, that's still terrible. Maybe try Bazel? It can break `go`(the CLI binary)'s rules and build any package from any source files, regardless of their locations. None of that is part of the language spec, `go` is just opinionated and inflexible (probably for simplicity).
It looks like there's basically 2 types of local privilege exploits used.
1) Writeable Docker Socket: https://www.exploit-db.com/exploits/42356
2) GTFObins: https://gtfobins.github.io/
A better solution might be https://github.com/Frissi0n/GTFONow which is written in python without dependencies and supports Py2/3. I would expect this to work on more hosts.
People here are viewing this with their developer hat on, download a static binary? Sure what’s the issue?
For people who work in security will know that you encounter systems with all sorts of architectures and operating systems.
As a pentester do you want to keep 14 different binaries for each security tool you have so that you are prepared for all platforms and architectures?
As a CTF player do you want to afford the time to compile this for whatever platform you encounter?
That’s why tools like linenum.sh and linpeas.sh are written in bash.
They run on anything.
I've encountered many systems without bash.